CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
Percentile
29.2%
CheckMK Raw Edition software (versions 1.5.0 to 1.6.0) does not sanitise
the input of a web service parameter that is in an unauthenticated zone.
This Reflected XSS allows an attacker to open a backdoor on the device with
HTML content and interpreted by the browser (such as JavaScript or other
client-side scripts) or to steal the session cookies of a user who has
previously authenticated via a man in the middle. Successful exploitation
requires access to the web service resource without authentication.
Author | Note |
---|---|
0xnishit | fix 1.6.0p26: https://github.com/tribe29/checkmk/commit/6b89403e47b541f96ac2b2c5953360a039a1fc71 |
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
Percentile
29.2%